| |
Vulnerability CVE-2020-6059
Published: 2020-02-04
| Description: |
An exploitable out of bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out of bounds memory read which can result in sensitive information disclosure and Denial Of Service. In order to trigger this vulnerability, an attacker needs to send a specially crafted packet to the vulnerable server. |
Type:
CWE-125 (Out-of-bounds Read)
CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
6.4/10 |
4.9/10 |
10/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
None |
Partial |
References: |
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0976
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
